Membership
Join as an Organization
Enterprises
Solution Providers
Contact Us
Current Members
Member Portal
Initiatives & Partnerships
AI Safety Initiative
CxO Trust
Zero Trust Advancement Center
Trusted Cloud Providers
Trusted Cloud Consultant
Other Opportunities
Event Sponsorships
Join as Individual
Chapters
Circle Community Forum
Research Working Groups
Volunteer Opportunities
STAR Program
STAR Home
STAR Registry
Submit to Registry
Provide Feedback
Certified STAR Auditors
STAR Enabled Solutions
Stay compliant in the cloud
CCAK Training
STAR Lead Auditor Training
Training for Government Agencies
Governance, Risk & Compliance Tools
Cloud Controls Matrix (CCM)
Consensus Assessment Initiative Questionnaire (CAIQ)
EU Cloud Code of Conduct
STAR Level 1
At level one organizations submit a self-assessment.
View companies at level one
Learn about level one
STAR Level 2
At level two organizations earn a certification or third-party attestation.
View companies at level two
Learn about level two
Certificates & Training
Online Platform
Knowledge Center
CSA Exams
Events
Learn and network while you earn CPE credits.
Virtual Events & Webinars
Event Sponsorships
Certificates
Certificate of Cloud Security Knowledge (CCSK)
Certificate of Cloud Auditing Knowledge (CCAK)
Certificate of Competence in Zero Trust (CCZT)
Digital Badges
Trainings
Cloud Infrastructure Security Training
STAR Lead Auditor Training
Advanced Cloud Security Practitioner (ACSP) Training
CCSK Train the Trainer
Training Network
Become an Instructor
Become a Training Partner
Specialized Training Options
Train my entire team
Training for Government Agencies
Research
CSA Research
Latest Research
Working Groups
Open Peer Reviews
Research Topics
Strategic Initiatives
AI Safety Initiative
Zero Trust Advancement Center
CxO Trust
Trusted Cloud Consultant
FinCloud Security
Thought Leadership
CloudBytes Webinars
Blog
Getting Started with CSA Research
Cloud security best practices
Assess your cloud compliance
Security questionnaire for vendors
Top threats to cloud computing
Cloud Security Glossary
Awards & Recognition
Juanita Koilpillai Awards
Research Fellows
Critical Topics
AI Safety Initiative
AI Technology and Risk
AI Governance & Compliance
AI Controls
AI Organizational Responsibilities
Enterprise Architecture
Blockchain
Zero Trust
DevSecOps
Top Threats
Membership
Join as an Organization
Enterprises
Solution Providers
Contact Us
Current Members
Member Portal
Initiatives & Partnerships
AI Safety Initiative
CxO Trust
Zero Trust Advancement Center
Trusted Cloud Providers
Trusted Cloud Consultant
Other Opportunities
Event Sponsorships
Join as Individual
Chapters
Circle Community Forum
Research Working Groups
Volunteer Opportunities
STAR Program
STAR Home
STAR Registry
Submit to Registry
Provide Feedback
Certified STAR Auditors
STAR Enabled Solutions
Stay compliant in the cloud
CCAK Training
STAR Lead Auditor Training
Training for Government Agencies
Governance, Risk & Compliance Tools
Cloud Controls Matrix (CCM)
Consensus Assessment Initiative Questionnaire (CAIQ)
EU Cloud Code of Conduct
STAR Level 1
At level one organizations submit a self-assessment.
View companies at level one
Learn about level one
STAR Level 2
At level two organizations earn a certification or third-party attestation.
View companies at level two
Learn about level two
Certificates & Training
Online Platform
Knowledge Center
CSA Exams
Events
Learn and network while you earn CPE credits.
Virtual Events & Webinars
Event Sponsorships
Certificates
Certificate of Cloud Security Knowledge (CCSK)
Certificate of Cloud Auditing Knowledge (CCAK)
Certificate of Competence in Zero Trust (CCZT)
Digital Badges
Trainings
Cloud Infrastructure Security Training
STAR Lead Auditor Training
Advanced Cloud Security Practitioner (ACSP) Training
CCSK Train the Trainer
Training Network
Become an Instructor
Become a Training Partner
Specialized Training Options
Train my entire team
Training for Government Agencies
Research
CSA Research
Latest Research
Working Groups
Open Peer Reviews
Research Topics
Strategic Initiatives
AI Safety Initiative
Zero Trust Advancement Center
CxO Trust
Trusted Cloud Consultant
FinCloud Security
Thought Leadership
CloudBytes Webinars
Blog
Getting Started with CSA Research
Cloud security best practices
Assess your cloud compliance
Security questionnaire for vendors
Top threats to cloud computing
Cloud Security Glossary
Awards & Recognition
Juanita Koilpillai Awards
Research Fellows
Critical Topics
AI Safety Initiative
AI Technology and Risk
AI Governance & Compliance
AI Controls
AI Organizational Responsibilities
Enterprise Architecture
Blockchain
Zero Trust
DevSecOps
Top Threats
Cloud 101CircleEventsBlog
Take the Understanding Data Risk Survey to help shape the future of data security!

Certificate of Cloud Security Knowledge (CCSK)

The standard of expertise for cloud security. Now updated to meet today's challenges.
Take the Exam
Education Home
View Upcoming Classes
Enterprise Training
CSA Exams
Resources
Home
Education
CCSK
The CCSK certificate is highly regarded as the benchmark for cloud security expertise. It provides a comprehensive and unbiased understanding of how to effectively secure data in the cloud.

Earning the CCSK certificate is the first step in preparing for other cloud certifications. The CCSK will give you the knowledge required to develop a security program that meets international standards. The newly updated certificate will prove your skills in Zero Trust, DevSecOps, Cloud Telemetry and Security Analytics, Artificial Intelligence, and more.

Start your journey towards becoming a recognized cloud security professional by earning your CCSK today.

Free Prep KitTraining Options

What are the benefits of earning the CCSK?

  • Career Advancement
    A globally recognized standard, the certificate opens doors to new job opportunities and higher roles, enhancing career trajectory.

  • Future-Ready Skills
    With coverage on AI/GenAI and Zero Trust, the CCSK equips you to tackle both present and upcoming security threats.

  • Earn a Digital Badge & Certificate
    Boost your professional viability by displaying the CCSK digital badge and certificate on your digital profiles and resumes to demonstrate your verified skills.

  • Engage with our CCSK Community
    Connect on our Circle platform with CCSK instructors and fellow students. Gain insights, share experiences, and get your questions answered.

Preparing for the CCSK

Demonstrate a mastery of essential and up-to-date cloud security knowledge with the CCSK.

The CCSK exam is open-book and online. It contains 60 multiple-choice questions selected randomly from a larger pool, and you must complete it in 120 minutes. The minimum passing score is 80%.

Purchase of the Exam and Chatbot costs $445 and provides you with two test attempts, which you will have 2 years to use.

Free Prep KitTake the Exam

The CCSK v5 covers 12 domains:

CSA CCSK Domain 1 Icon

Domain 1

Cloud Computing Concepts & Architectures

CSA CCSK Domain 2 Icon

Domain 2

Cloud Governance

CSA CCSK Domain 3 Icon

Domain 3

Risk, Audit, & Compliance

CSA CCSK Domain 4 Icon

Domain 4

Organization Management

CSA CCSK Domain 5 Icon

Domain 5

Identity & Access Management

CSA CCSK Domain 6 Icon

Domain 6

Security Monitoring

CSA CCSK Domain 7 Icon

Domain 7

Infrastructure & Networking

CSA CCSK Domain 8 Icon

Domain 8

Cloud Workload Security

CSA CCSK Domain 9 Icon

Domain 9

Data Security

CSA CCSK Domain 10 Icon

Domain 10

Application Security

CSA CCSK Domain 11 Icon

Domain 11

Incident Response & Resilience

CSA CCSK Domain 12 Icon

Domain 12

Related Technologies & Strategies

Free Prep Kit

Who should take the CCSK exam?
CCSK is designed for IT professionals working in cloud computing. Security staff and other technical professionals, including developers, IT operations, audit/compliance professionals, sales and solution engineers, and product marketers, benefit from its well-rounded view of cloud security.

Which career paths does the CCSK help prepare for?
CCSK is useful to any career path where cloud and security overlap. It's similar to introductory classes in university, providing a broad overview of cloud security with hooks to dig deeper into a student's specific coverage area.

What are the prerequisites?
No official work experience orqualification is required. However, it's helpful forto have at least a basic understanding offundamentals such as firewalls, secure development,, and identity and access management.

Free Prep KitView Classes

Study on Your Own

You can study for the exam yourself using our free Prep Kit. The kit comes with everything you need to study and prepare for the CCSK exam.

Free Prep Kit

Enroll in Training

Available training formats include:

  • Online Self-Paced
  • Virtual or In-Person Instructor-Led (lectures-only)
  • CCSK Plus | Lectures + Labs (lectures + hands-on exercises)

Instructors offer courses in English but they are willing to provide other language options based on demand. We only offer Online Self-Paced training in English.

Self-Paced TrainingView Classes

Train Your Team

Our team training offerings are designed and proven to:

  • Fill your cloud security skills gaps.
  • Get all your stakeholders trained, certified, and aligned.
  • Meet your organization's staff training needs with exactly what fits your needs and budget.
  • Recognize training completion and incentivize staff with certificates for passing the exam.

*Note that CSA Corporate Membership includes discounts on the CCSK and team training credits.

Contact Us

Advancing Cloud Security Guidance with CCSK v5

What enhancements have been made to the CCSK v5?

CCSK v5 has undergone significant updates to align with modern cloud security needs. Enhancements include:

  • Consolidated Domain Structure: The content has been reorganized into 12 domains instead of 14, with a more effective grouping of topics.
  • Increased and Refined Focus Areas: The certificate now offers increased coverage on Cloud Workloads, emphasizing Serverless/FaaS, along with expanded material on Application Security, CI/CD, DevSecOps, and Automation.
  • Strengthening Core Areas: There is extended and improved upon content across Governance, Auditing, Compliance, Organizational Security, IAM, and Incident Response.
What are the new additions to the CCSK v5 curriculum?

The CCSK v5 introduces several new critical elements to its curriculum:

  • Artificial Intelligence: AI and Gen AI has replaced the previous Related Technologies chapter, shifting the focus away from topics like IoT and Mobile Data to more central issues in current cloud security.
  • Zero Trust Strategy: Zero Trust concepts have been integrated across various domains.
  • Data Lakes: Explicit reference to Data Lakes has been added.

Furthermore, the CCSK v5 has reduced coverage of Legal and Regulatory specifics, moving away from detailed discussions on Laws and Regulations. Additionally, Security as a Service (Sec-aaS) has been removed, with cloud security tools now discussed across several domains.

How does the CCSK v5 set the standard for industry certificates?
The CCSK v5 certificate is at the forefront of cloud security education, incorporating the latest advancements in AI, Zero Trust, and topics such as Data Lakes and Cloud Telemetry. It uniquely balanced foundational knowledge with in-depth exploration of specialized topics, emphasizing the practical application of security principles in real-world scenarios. This comprehensive curriculum equips professionals with actionable skills, enabling them to effectively address modern challenges in complex cloud environments and set new standards in the industry.
Free Prep KitView Classes

CCSK Community Highlights

Earn a commision & promote the CCSK
Partner with us to promote the CCSK! By supporting this initiative, you'll position your organization as a leader in cloud security best practices while also earning additional revenue.

Get Involved
Acknowledgements
Meet the dedicated cloud security professionals who were instrumental in developing the CCSK v5, ensuring the highest quality in course content.

View contributors

Industry Support

With CCSK certification, professionals who have Cloud Computing responsibilities can demonstrate thorough Cloud security knowledge based on the CSA's catalogue of security best practices.

Patrick Harding
CTO, Ping Identity
Jerry Archer

The CSA, in providing a set of goals through the CCSK, is challenging security practitioners to become the cloud thought-leaders we need today and tomorrow to ensure safe and secure cloud environments. In developing the CCSK, CSA is 'setting the bar' for security professionals and providing business executives a means to gauge the opinions and rhetoric associated with security in the cloud.

Jerry Archer
SVP and Chief Security Officer for Sallie Mae
Shankar Chebrolu

The CCSK is a benchmark for cloud security expertise. Our team of security architects and analysts has greatly benefited from the comprehensive understanding of cloud security principles and practices that this certification offers. It has enabled us to implement robust security strategies that align with industry best practices.

Shankar Chebrolu
Director of Security Architecture at Red Hat and President of CSA Triangle Chapter

Obtaining the CCSK certificate was one of the best decisions I've made for my professional growth. Studying for the certificate not only deepened my technical knowledge but also improved my ability to communicate security concepts to non-technical stakeholders. It's a fantastic certificate for anyone serious about cloud security.

Salvador Guarino Jr.
CISO at PwC Philippines
Dr. Victor Monga

The CCSK certificate is a cornerstone for vendor-agnostic cloud security education. It effectively strengthens the fundamentals across essential cloud security domains and plays a critical role in upskilling talent to meet modern security challenges.

Dr. Victor Monga
CISO and Adjunct Professor at Virtually Testing Foundation

The Cloud Security Alliance Federal Cloud Security Symposium at MITRE in 2009 was a game changer for me as a new CISO at a federal government contractor. I benefited from studying the CSA and ENISA guidance in preparing for the CCSK exam over 10 years ago. At the time, the CSA Security Guidance for Critical Areas of Focus in Cloud Computing was the standard customers used to gauge the security safeguards implemented by cloud providers. Since that time, the depth and breadth of the guidance has increased and matured even further. I highly recommend the CCSK for those looking to improve their knowledge of cloud security best practices.

Mark Potter
CISO at Backblaze, Inc (BLZE)

The CCSK has proven to be an invaluable resource for our leadership teams. It ensures that our leaders are well-versed in the latest cloud security trends and technologies, enabling us to make informed decisions and maintain a competitive edge in the market.

Tim Chase
Global Field CISO, Lacework
Earl Duby

Cloud service utilization is accelerating and will continue to become the norm in delivery of services. As business leaders, we need to accept and understand this. The best way to build optimal teams and implement sufficient controls is to prepare our people for this reality. The CCSK certificate from the Cloud Security Alliance is, by far, the most useful body of knowledge related to cloud service delivery. Every IT team and every cyber security team should be well-stocked with team members who have achieved the CCSK certificate.

Earl Duby
4x CISO
Certificate of Competence in Zero Trust (CCZT)

The industry's first authoritative Zero Trust certificate. Gain strategic insights and practical skills necessary to implement Zero Trust architectures effectively.

Cloud Security Infrastructure Training

Concise, focused courses designed to quickly upskill your knowledge in key areas of the latest security practices and components.

CSA Research

Access a collection of research, white papers, and articles to stay informed on the latest industry developments.

Events & Webinars

Explore upcoming and past events and webinars to connect with experts, enhance your knowledge, and explore the latest trends.